Apple Macos Sonoma vulnerabilities

CVE-2023-42959 [HIGH] CVE-2023-42959: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-42959 Component: Graphics Drivers Impact: An app may be able to execute arbitrary code with kernel privileges Description: A race condition was addressed with improved state handling.

CVE-2023-32377 [HIGH] CVE-2023-32377: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-32377 Component: AMD Impact: An app may be able to execute arbitrary code with kernel privileges Description: A buffer overflow issue was addressed with improved memory handling.

CVE-2023-39434 [HIGH] CVE-2023-39434: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-39434 Component: WebKit Impact: Processing web content may lead to arbitrary code execution Description: A use-after-free issue was addressed with improved memory management.

CVE-2023-42826 [HIGH] CVE-2023-42826: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-42826 Component: Model I/O Impact: Processing a file may lead to arbitrary code execution Description: The issue was addressed with improved checks.

CVE-2023-32359 [HIGH] CVE-2023-32359: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-32359 Component: WebKit Impact: A user's password may be read aloud by VoiceOver Description: This issue was addressed with improved redaction of sensitive information.

CVE-2023-41074 [HIGH] CVE-2023-41074: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-41074 Component: WebKit Impact: Processing web content may lead to arbitrary code execution Description: The issue was addressed with improved checks.

CVE-2023-42875 [HIGH] CVE-2023-42875: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-42875 Component: WebKit Impact: Processing web content may lead to arbitrary code execution Description: The issue was addressed with improved memory handling.

CVE-2023-40432 [HIGH] CVE-2023-40432: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-40432 Impact: An app may be able to execute arbitrary code with kernel privileges Description: The issue was addressed with improved memory handling.

CVE-2023-40401 [HIGH] CVE-2023-40401: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-40401 Component: Passkeys Impact: An attacker may be able to access passkeys without authentication Description: The issue was addressed with additional permissions checks.

CVE-2023-40443 [HIGH] CVE-2023-40443: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-40443 Component: Spotlight Impact: An app may be able to gain root privileges Description: The issue was addressed with improved checks.

CVE-2023-40396 [HIGH] CVE-2023-40396: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-40396 Component: IOUserEthernet Impact: An app may be able to execute arbitrary code with kernel privileges Description: The issue was addressed with improved memory handling.

CVE-2023-32396 [HIGH] CVE-2023-32396: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-32396 Component: Dev Tools Impact: An app may be able to gain elevated privileges Description: This issue was addressed with improved checks.

CVE-2023-41984 [HIGH] CVE-2023-41984: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-41984 Component: Kernel Impact: An app may be able to execute arbitrary code with kernel privileges Description: The issue was addressed with improved memory handling.

CVE-2023-38615 [HIGH] CVE-2023-38615: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-38615 Component: AMD Impact: An app may be able to execute arbitrary code with kernel privileges Description: The issue was addressed with improved memory handling.

CVE-2023-40407 [HIGH] CVE-2023-40407: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-40407 Component: CUPS Impact: A remote attacker may be able to cause a denial-of-service Description: The issue was addressed with improved bounds checks.

CVE-2023-42970 [HIGH] CVE-2023-42970: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-42970 Component: WebKit Impact: Processing web content may lead to arbitrary code execution Description: A use-after-free issue was addressed with improved memory management.

CVE-2023-40452 [HIGH] CVE-2023-40452: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-40452 Component: Sandbox Impact: An app may be able to overwrite arbitrary files Description: The issue was addressed with improved bounds checks.

CVE-2023-41995 [HIGH] CVE-2023-41995: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-41995 Component: Kernel Impact: An app may be able to execute arbitrary code with kernel privileges Description: A use-after-free issue was addressed with improved memory management.

CVE-2023-41993 [HIGH] CVE-2023-41993: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-41993 Component: WebKit Impact: Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 16.7. Description: The issue was addressed with improved checks.

CVE-2023-42933 [HIGH] CVE-2023-42933: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-42933 Component: Dev Tools Impact: An app may be able to gain elevated privileges Description: This issue was addressed with improved checks.